Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/adam_caudill/statuses/114140366319442691">Adam Caudill (adam_caudill@infosec.exchange)'s status on Tuesday, 11-Mar-2025 07:55:11 JST</a><a href="https://infosec.exchange/@adam_caudill" title="adam_caudill@infosec.exchange"><img src="https://gnusocial.jp/avatar/324574-48-20250310225511.webp" width="48" height="48" alt="Adam Caudill" style="position: absolute; left: 0; top: 0;">Adam Caudill</a></section><article><p>As people are discussing the issues witth DDoS attacks and attribution, I’m reminded of how the US Government blamed Russia for a DDoS attack against one of their neighbors, which is more accurately (though very indirectly) blamed on me. </p><p>Many years ago I complained in an IRC channel about a small website that ripped off the design of one of my sites. A somewhat shady member of that channel happened to control a sizable botnet (with primarily RU IPs). Yep. You see where this is going. (To be clear, I was venting, and didn’t ask him or anyone else to do anything.)</p><p>He thought it would be funny to get a little revenge on my behalf.  He aimed his entire botnet at that website, and hit the network with so much traffic that it didn’t take down the target server, instead it saturated the core network gear for the country’s main ISP, knocking most of the country offline for several hours. </p><p>By pure coincidence, said small Eastern European country was holding national elections the day I complained about the website, something I didn’t discover until years later. </p><p>Even the US Government, with all their resources, can’t always tell the difference between a state-backed attack and a teenager “having fun” with a botnet.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4709699#notice-9223328">In conversation</a><time datetime="2025-03-11T07:55:11+09:00" title="Tuesday, 11-Mar-2025 07:55:11 JST">about 2 months ago</time> <span>from <span><a href="https://infosec.exchange/@adam_caudill/114140366319442691" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@adam_caudill/114140366319442691">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Adam Caudill (adam_caudill@infosec.exchange)'s status on Tuesday, 11-Mar-2025 07:55:11 JST Adam Caudill
As people are discussing the issues witth DDoS attacks and attribution, I’m reminded of how the US Government blamed Russia for a DDoS attack against one of their neighbors, which is more accurately (though very indirectly) blamed on me.
Many years ago I complained in an IRC channel about a small website that ripped off the design of one of my sites. A somewhat shady member of that channel happened to control a sizable botnet (with primarily RU IPs). Yep. You see where this is going. (To be clear, I was venting, and didn’t ask him or anyone else to do anything.)
He thought it would be funny to get a little revenge on my behalf. He aimed his entire botnet at that website, and hit the network with so much traffic that it didn’t take down the target server, instead it saturated the core network gear for the country’s main ISP, knocking most of the country offline for several hours.
By pure coincidence, said small Eastern European country was holding national elections the day I complained about the website, something I didn’t discover until years later.
Even the US Government, with all their resources, can’t always tell the difference between a state-backed attack and a teenager “having fun” with a botnet.
In conversationabout 2 months ago from infosec.exchangepermalink

Public

Embed Notice

HTML Code

Corresponding Notice